[Bug 38234] Vulnerable jszip version used in stable release (CVE-2022-48285)
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=38234 David Cook <dcook@prosentient.com.au> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #173204|0 |1 is obsolete| | --- Comment #6 from David Cook <dcook@prosentient.com.au> --- Created attachment 173242 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=173242&action=edit Bug 38234: Remove unused jszip.min.js file This specific file is not used since Bug 23013 ("Upgrade DataTables in the staff client") This version is vulnerable and should not be used in the future anyway. There is a version embedded in our DataTables bundle, which is jszip-3.10.1. Signed-off-by: David Cook <dcook@prosentient.com.au> -- You are receiving this mail because: You are watching all bug changes.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org